SOC Vulnerability Management AESS Lead - Senior

About The Position

Requirements

• U.S. Citizenship is required
• Security Clearance: Secret Eligible
• Required Certifications: DCWF Work Role 541-Vulnerability Assessment Analyst — Intermediate proficiency; must hold ONE OR MORE of the following: CEH(P), RCCE Level 1, Cloud+, CPTE, FITSP-A, GCED, GCIH, GCSA, GICSP, GSEC, PenTest+, Security+
• 7+ years of experience in cybersecurity
• Bachelors degree or higher in Computer Science, Cybersecurity, Data Science, Information Systems, Information Technology, or Software Engineering
• Demonstrated experience leading endpoint vulnerability scanning, validation, and remediation coordination in enterprise environments.
• Experience overseeing endpoint visibility, scan coverage verification, and data accuracy for cybersecurity operations and compliance reporting.
• Working knowledge of STIGs, IAVMs, RMF processes, POA&M management, and continuous monitoring practices.
• Experience coordinating with SOC analysts, system owners, and endpoint administrators to track and validate corrective actions.
• Ability to develop operational metrics and compliance reporting that support audit readiness and enterprise cybersecurity risk management.
• Experience supporting cybersecurity operations in classified and unclassified environments.
• Familiarity with AESS-supported endpoint security operations within an Army or DoD enterprise context.

Responsibilities

• Lead AESS endpoint security scanning and validation activities across supported enterprise environments to identify, prioritize, and track endpoint vulnerabilities.
• Oversee configuration, sustainment, and operational effectiveness of AESS tools to ensure reliable endpoint visibility, accurate scan data, and complete security coverage.
• Verify vulnerability scanning coverage and data quality across enterprise endpoints supporting ARNG operations in 54 states and territories.
• Coordinate remediation activities with system owners, endpoint administrators, and SOC personnel to resolve identified weaknesses and validate corrective actions.
• Ensure vulnerability management activities align with STIGs, IAVMs, RMF requirements, and applicable DoD and ARNG cybersecurity directives.
• Maintain accurate POA&M documentation and support eMASS-related continuous monitoring and compliance activities for endpoint security findings.
• Produce operational metrics, status reporting, and compliance artifacts that support audit readiness, cybersecurity governance, and enterprise risk management objectives.
• Support Task 3 deliverables by contributing to continuous scanning, remediation, and compliance monitoring efforts that strengthen ARNG defensive cyberspace operations.
• Coordinate vulnerability management actions within the broader SOC and cybersecurity operations framework, including collaboration across 24x7x365 monitoring functions and engagement points with NETCOM Global Cyber Center and DISA DCDC as required.